baserproject/basercms Security Advisories for 5.0.0-beta3 (7)
-
[HIGH] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature
PKSA-vwf1-pc89-hwmm CVE-2024-46998 GHSA-p3m2-mj3j-j49x
Affected version: <=5.1.1
Reported by:
GitHub -
[MEDIUM] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts Feature
PKSA-2n26-3nmt-wj9x CVE-2024-46996 GHSA-66jv-qrm3-vvfg
Affected version: <=5.1.1
Reported by:
GitHub -
[MEDIUM] baserCMS has a Cross-site Scripting (XSS) Vulnerability in HTTP 400 Bad Request
PKSA-p655-dyj9-4mvs CVE-2024-46995 GHSA-mr7q-fv7j-jcgv
Affected version: <=5.1.1
Reported by:
GitHub -
[MEDIUM] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts and Contents list Feature
PKSA-xcdb-2rf5-69bx CVE-2024-46994 GHSA-wrjc-fmfq-w3jr
Affected version: <=5.1.1
Reported by:
GitHub -
[MEDIUM] baserCMS Cross-site Scripting vulnerability in Site search Feature
PKSA-mwdp-p7zx-ctg9 CVE-2023-44379 GHSA-66c2-p8rh-qx87
Affected version: <5.0.9
Reported by:
GitHub -
[MEDIUM] baserCMS OS command injection vulnerability in Installer
PKSA-8rh3-g94s-b7nm CVE-2023-51450 GHSA-77fc-4cv5-hmfr
Affected version: <5.0.9
Reported by:
GitHub -
[MEDIUM] baserCMS Cross-site Scripting vulnerability in Content Management
PKSA-6q5n-gkcc-h3dr CVE-2024-26128 GHSA-jjxq-m8h3-4vw5
Affected version: <5.0.9
Reported by:
GitHub